ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited.
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| devel | not-affected | uses system tiff |
| esm-apps/bionic | not-affected | uses system tiff |
| esm-apps/focal | not-affected | uses system tiff |
| esm-apps/jammy | not-affected | uses system tiff |
| esm-apps/noble | not-affected | uses system tiff |
| esm-apps/xenial | not-affected | code not compiled |
| esm-infra-legacy/trusty | not-affected | code not compiled |
| jammy | not-affected | uses system tiff |
| noble | not-affected | uses system tiff |
| plucky | not-affected | uses system tiff |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| devel | not-affected | dropped embedded libtiff |
| esm-apps/bionic | not-affected | code not compiled |
| esm-apps/focal | not-affected | code not compiled |
| esm-apps/jammy | not-affected | code not compiled |
| esm-apps/noble | not-affected | dropped embedded libtiff |
| jammy | not-affected | code not compiled |
| noble | not-affected | dropped embedded libtiff |
| plucky | not-affected | dropped embedded libtiff |
| questing | not-affected | dropped embedded libtiff |
| upstream | needs-triage |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| devel | not-affected | code not compiled |
| esm-apps/bionic | not-affected | code not compiled |
| esm-apps/focal | not-affected | code not compiled |
| esm-apps/jammy | not-affected | code not compiled |
| esm-apps/noble | not-affected | code not compiled |
| jammy | not-affected | code not compiled |
| noble | not-affected | code not compiled |
| plucky | not-affected | code not compiled |
| questing | not-affected | code not compiled |
| upstream | needs-triage |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| devel | not-affected | code not compiled |
| esm-apps/bionic | not-affected | code not compiled |
| esm-apps/focal | not-affected | code not compiled |
| esm-apps/jammy | not-affected | code not compiled |
| esm-apps/noble | not-affected | code not compiled |
| esm-apps/xenial | not-affected | code not compiled |
| jammy | not-affected | code not compiled |
| noble | not-affected | code not compiled |
| plucky | not-affected | code not compiled |
| questing | not-affected | code not compiled |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| devel | released | 4.7.0-3ubuntu3 |
| esm-infra-legacy/trusty | released | 4.0.3-7ubuntu0.11+esm16 |
| esm-infra/bionic | released | 4.0.9-5ubuntu0.10+esm9 |
| esm-infra/focal | released | 4.1.0+git191117-2ubuntu0.20.04.14+esm2 |
| esm-infra/xenial | released | 4.0.6-1ubuntu0.8+esm19 |
| jammy | released | 4.3.0-6ubuntu0.12 |
| noble | released | 4.5.1+git230720-4ubuntu2.4 |
| plucky | released | 4.5.1+git230720-4ubuntu4.2 |
| questing | released | 4.7.0-3ubuntu3 |
| upstream | released | 4.7.0-5 |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
Π‘ΡΡΠ»ΠΊΠΈ Π½Π° ΠΈΡΡΠΎΡΠ½ΠΈΠΊΠΈ
EPSS
1.7 Low
CVSS2
3.3 Low
CVSS3
Π‘Π²ΡΠ·Π°Π½Π½ΡΠ΅ ΡΡΠ·Π²ΠΈΠΌΠΎΡΡΠΈ
A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited.
A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited.
LibTIFF tiffcrop tiffcrop.c main memory corruption
A weakness has been identified in LibTIFF 4.7.0. This affects the func ...
A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
EPSS
1.7 Low
CVSS2
3.3 Low
CVSS3